$ rpki-client -vvf rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft File: 9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft (raw, json) Hash identifier: DTgCLvNQ1wPSXcFiN10YATjkOf7FrArhJAQqhxwS5Cg= Subject key identifier: 38:28:53:66:C3:92:98:E3:BF:0F:AF:DC:AE:ED:88:05:6F:E0:B0:8D Authority key identifier: F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 Certificate issuer: /CN=A91E2F80/serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Certificate serial: 011E Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft Manifest number: 0110 Signing time: Sun 07 Sep 2025 05:32:19 +0000 Manifest this update: Sun 07 Sep 2025 05:32:19 +0000 Manifest next update: Sun 14 Sep 2025 05:32:19 +0000 Files and hashes: 1: 9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl (hash: K45lqCEVkqaab+E32KM//2EVgvk3765Z7KkqxWr2Gvo=) 2: DAC9D5960C7E11EF9A189E18C4F9AE02.roa (hash: cLX/WlgP7K24ucXGUUtpNzmDrPk9vKJrsn64OyHEFQQ=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Sep 2025 05:32:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 286 (0x11e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91E2F80, serialNumber=F410C483A4C8C916FFD4CF420C4C110889798891 Validity Not Before: Sep 7 05:32:19 2025 GMT Not After : Sep 14 05:32:19 2025 GMT Subject: CN=68bd18e3-b1ba Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:cd:13:78:e1:05:bf:95:3e:fc:96:15:6f:3a: 2a:38:7f:9a:07:b7:73:ea:2b:61:7d:d4:04:c2:d0: 11:d7:50:9d:e9:d7:16:bd:5d:23:01:ba:73:c0:4c: 8c:ff:e9:5a:4c:3c:97:c2:da:0f:b4:bd:cc:21:4f: 54:2e:80:fe:2f:dc:43:a7:86:23:f1:0e:ae:17:61: 3f:60:3e:94:be:15:6b:11:38:03:80:27:06:ae:90: 26:79:87:ba:02:1a:e4:35:4d:5d:92:10:ed:31:9d: 72:98:de:a7:98:86:a8:1b:f6:c9:74:92:cc:48:2e: 68:db:a6:76:ee:bd:77:2b:5c:37:ee:8c:bc:e9:41: 2c:04:eb:d9:2f:13:3d:9d:19:2f:82:db:12:0a:e3: 70:49:c3:02:f2:50:f1:82:fb:d4:b8:4b:b3:57:43: 79:99:87:c5:78:55:00:81:e1:03:59:b5:1b:19:eb: 3d:30:46:0e:a4:5b:93:1d:83:28:6c:59:b9:ab:7b: 94:8b:d1:91:19:ca:98:0e:74:8c:4c:ca:0e:3e:ce: 3b:88:26:67:dd:10:d6:16:4c:3e:d3:da:c7:9d:05: 51:fd:c4:8b:75:eb:9a:ee:a5:4a:d2:e7:d4:bd:bb: 5d:d7:06:62:93:89:6b:d8:f5:a3:5d:10:3c:80:3d: 51:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:28:53:66:C3:92:98:E3:BF:0F:AF:DC:AE:ED:88:05:6F:E0:B0:8D X509v3 Authority Key Identifier: keyid:F4:10:C4:83:A4:C8:C9:16:FF:D4:CF:42:0C:4C:11:08:89:79:88:91 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/9BDEg6TIyRb_1M9CDEwRCIl5iJE.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91E2F80/94C54B80039511EF85B69F4EC4F9AE02/9BDEg6TIyRb_1M9CDEwRCIl5iJE.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:4e:51:55:c6:83:29:17:63:3d:ae:84:e7:3a:f9:6a:df:17: 3d:d0:b1:ea:02:8a:4f:80:4d:22:d1:5f:ed:4a:aa:47:a7:8d: 50:e0:b9:6c:8a:4a:eb:cc:e8:b3:08:26:95:69:b1:ea:bb:54: 8c:bb:1f:be:72:12:70:f4:12:42:57:e2:ad:ad:0d:58:fc:38: 9d:1e:bc:d2:17:70:92:ca:44:a3:fa:3b:33:98:48:43:ae:7e: 63:b4:61:1c:ff:1a:96:a2:53:58:1b:c4:c9:e5:72:b7:4f:06: 55:1d:d6:e0:18:cd:88:42:36:b5:27:e1:1e:cc:8e:be:93:f9: 8c:38:2c:14:d1:95:94:5d:6a:a0:26:e1:ea:4a:70:63:30:4f: 26:2d:11:64:d8:03:5c:b1:fa:2c:76:c3:b2:0c:4a:9f:72:b3: 6f:29:ad:ce:a6:fc:ca:6b:97:3f:26:83:d2:11:b6:83:50:ac: 06:03:90:26:19:cb:f6:22:f1:45:a0:dd:55:bf:db:f9:2d:16: d2:16:d9:45:d7:cf:09:2a:6d:a6:44:95:c1:21:35:be:81:56: d6:f6:d3:90:d7:d5:d2:e7:46:d4:5d:c1:0d:ce:97:21:e1:79: d1:63:5f:9e:50:1b:c3:d2:8f:45:f0:49:54:ea:50:a6:f2:0d: 3e:03:65:70 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAR4wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx RTJGODAxMTAvBgNVBAUTKEY0MTBDNDgzQTRDOEM5MTZGRkQ0Q0Y0MjBDNEMxMTA4 ODk3OTg4OTEwHhcNMjUwOTA3MDUzMjE5WhcNMjUwOTE0MDUzMjE5WjAYMRYwFAYD VQQDEw02OGJkMThlMy1iMWJhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA780TeOEFv5U+/JYVbzoqOH+aB7dz6ithfdQEwtAR11Cd6dcWvV0jAbpzwEyM /+laTDyXwtoPtL3MIU9ULoD+L9xDp4Yj8Q6uF2E/YD6UvhVrETgDgCcGrpAmeYe6 AhrkNU1dkhDtMZ1ymN6nmIaoG/bJdJLMSC5o26Z27r13K1w37oy86UEsBOvZLxM9 nRkvgtsSCuNwScMC8lDxgvvUuEuzV0N5mYfFeFUAgeEDWbUbGes9MEYOpFuTHYMo bFm5q3uUi9GRGcqYDnSMTMoOPs47iCZn3RDWFkw+09rHnQVR/cSLdeua7qVK0ufU vbtd1wZik4lr2PWjXRA8gD1RpwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFDgoU2bD kpjjvw+v3K7tiAVv4LCNMB8GA1UdIwQYMBaAFPQQxIOkyMkW/9TPQgxMEQiJeYiR MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFFMkY4MC85NEM1NEI4MDAz OTUxMUVGODVCNjlGNEVDNEY5QUUwMi85QkRFZzZUSXlSYl8xTTlDREV3UkNJbDVp SkUuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyLzlCREVnNlRJeVJiXzFNOUNERXdSQ0lsNWlKRS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFF MkY4MC85NEM1NEI4MDAzOTUxMUVGODVCNjlGNEVDNEY5QUUwMi85QkRFZzZUSXlS Yl8xTTlDREV3UkNJbDVpSkUubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAoTlFVxoMpF2M9roTnOvlq3xc90LHqAopPgE0i0V/tSqpHp41Q4Lls ikrrzOizCCaVabHqu1SMux++chJw9BJCV+KtrQ1Y/DidHrzSF3CSykSj+jszmEhD rn5jtGEc/xqWolNYG8TJ5XK3TwZVHdbgGM2IQja1J+EezI6+k/mMOCwU0ZWUXWqg JuHqSnBjME8mLRFk2ANcsfosdsOyDEqfcrNvKa3OpvzKa5c/JoPSEbaDUKwGA5Am Gcv2IvFFoN1Vv9v5LRbSFtlF188JKm2mRJXBITW+gVbW9tOQ19XS50bUXcENzpch 4XnRY1+eUBvD0o9F8ElU6lCm8g0+A2Vw -----END CERTIFICATE-----Generated at Sun Sep 7 15:23:02 2025 by rpki-client